Trust & Governance Center

Learn how PackC Systems, Inc. guarantees security compliance, software licensing integrity, and data sovereignty.

Privacy & GDPR Policy

Last updated: July 15, 2026
Sovereign Data Storage Mandate: As a self-hosted platform, PackCPQ does not host, transfer, or have access to your customer list database, raw materials pricing indexes, folding specs, or finalized client quotes. All operational data is stored strictly on your own hardware inside your secure network.

1. Overview

This Privacy Policy describes how PackC Systems, Inc. (“we,” “our,” or “us”) collects, protects, uses, and shares information in relation to our commercial licensing agreements, licensing check APIs, and our marketing site.

2. Self-Hosted Data Isolation

Unlike traditional Software-as-a-Service (SaaS) providers, PackCPQ operates on a self-hosted architecture. When you deploy the containerized CPQ engine:

  • Your databases, tables, and rules are hosted on servers under your exclusive control.
  • No quote details, box dimensions, material parameters, or customer profiles are sent back to us.
  • All calculations occur on-premise, allowing full offline/air-gapped operations.

3. Information We Collect

We collect only the minimum necessary information to manage your account and validate license keys:

  • License Metadata: When your self-hosted server checks in to validate its active license key, it transmits the license key token, server environment identifiers (internal IP or hostname), and total active plants configuration.
  • Business Account Info: We collect organization names, billing contacts, physical addresses, and email addresses during sales agreements.
  • Support Communications: Any messages, diagnostics, or configuration logs you voluntarily upload during support tickets.

4. How We Use Information

We use your metadata and contact info exclusively for the following purposes:

  • To validate active license subscriptions and prevent software piracy.
  • To bill and collect annual licensing fees.
  • To coordinate and execute dedicated Support SLAs.
  • To notify system administrators of patch releases and critical security announcements.

5. GDPR & International Compliance

For organizations operating in the European Economic Area (EEA), we act as a Data Controller for your account metadata, but you act as the sole Data Controller for all calculator operations and client data. We conform strictly to standard GDPR guidelines regarding your right to access, rectify, or erase your account details.

6. Contact Information

For questions regarding this policy or data processing agreements (DPA), please contact:

Privacy Operations Teamprivacy@packcpq.com
Headquarters100 Pine Street, Suite 1250, San Francisco, CA 94111